Re: use-after-free in sock_wake_async

From: Eric Dumazet
Date: Thu Nov 26 2015 - 12:29:29 EST

Next message: Sudeep Holla: "Re: [PATCH 5/5] clk: scpi: add missing of_node_put"
Previous message: Greg KH: "Re: [PATCH v1 0/1] ioctl to disallow detaching kernel USB drivers"
In reply to: Hannes Frederic Sowa: "Re: use-after-free in sock_wake_async"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 2015-11-26 at 18:03 +0100, Hannes Frederic Sowa wrote:

> Also isn't the reason why slub exists so it can track memory regions
> per-cpu.

call_rcu() and kfree_rcu() will add a grace period (multiple ms) where
the cpu will likely evict from its caches the data contained in the
'about to be freed' objects, defeating the SLUB/SLAB ability to quickly
reuse a freed and hot object (LIFO)

This is one of the major RCU drawback : Force a FIFO behavior in object
reuse while LIFO one is much better for data locality, especially with
per-cpu lists.

Another problem is a slightly bigger working set size, which can hurt
some workloads that used to exactly fit cpu caches.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sudeep Holla: "Re: [PATCH 5/5] clk: scpi: add missing of_node_put"
Previous message: Greg KH: "Re: [PATCH v1 0/1] ioctl to disallow detaching kernel USB drivers"
In reply to: Hannes Frederic Sowa: "Re: use-after-free in sock_wake_async"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]